Skip to main content

This job has expired

Senior Information Security Officer

Employer
Warwickshire County Council
Location
Shire Hall, Warwick, CV34 4RL
Salary
£33,136 - £35,229
Closing date
16 Apr 2020
Reference
WARW000004589

Job Details

Information and Cyber Security has been placed at the forefront of the council's priorities. It is being interwoven into all business tasks from both an operational and management perspective. It's an exciting time to join the team.

The post holder will report to the Cyber Security Manager and will be joining a team of Cyber Security professionals. You will be provided with great development opportunities, with the chance to make your mark for one of the UK’s leading County Councils.

Join a dynamic and high performing security team tasked with protecting information assets and supporting the WCC Digital by Default programme.

The Role

Support the delivery of the information security strategy, including helping to:

Further maturing the information security capability and function.

Further raising awareness of information security amongst colleagues. 

Reduce WCC’s exposure to cybersecurity risks.

Be a subject matter expert (SME) to provide security consultancy and requirements to new ICT projects and business change/led initiatives, to ensure the requirements are incorporated into the designs, and built into final solutions, and to support project teams in the vendor/solution selection process.

Help support WCC’s information risk management approach and activities, including: 

Performing information security risk assessments and maintaining the information security risk register 
Undertaking information security audits. 

Reporting of management information (MI) on WCC compliance and risk posture.

Assist with and lead on the management of information security improvement projects and initiatives (e.g. Phishing campaigns).

Support the supplier assurance program, including undertaking supplier security assessments, reviewing supplier risk assessment responses, co-ordinating the inclusion of future security and/or data protection schedules into supplier contracts.

Help develop new, and review and maintain existing, security policies, standards, procedures and guidelines within the WCC Information Security policy framework.

Build upon and to contribute to the delivery of the existing enterprise wide information security awareness programme which aims to make the topic of information security fun and engaging.

Work collaboratively with stakeholders from across the business, to help embed security principles and good security behaviours into the respective departments.

Perform occasional site visits providing guidance to staff as the face of Information Security.

Maintain up-to-date knowledge of the Information and cyber security industry including awareness of new or revised security solutions, improved security processes and the development of threat landscape. This can include attendance of HMG, NCSC, LGA, WARP meetings or expos on an adhoc basis (This can require UK travel).

Key Requirements

A pragmatic approach to information security.

Minimum of 3 years experience in Information Security. 

Relevant security experience in: 

Managing and responding to security threats and incidents. 

Conducting information risk assessments, maintaining a risk register and articulating security risks using business friendly language.

Exposure to BIA, BCP and DR. 

Undertaking supplier security audits. 

Defining security requirements for new ICT projects and initiatives, and helping project teams embed security into business processes, ICT solutions and systems. 

Exposure to delivering security improvement projects. 

Developing security policies, standards and procedures. 

An understanding of working in a digital environment and/or be involved in digital transformation programmes. 

Working with Cloud environments will be desirable (Office 365, GSuite, Azure, AWS etc).

Relevant security certification (e.g. CISSP, CISA, CISM, MSc in Information Security) and/ or a significant period (minimum 3 years experience) of demonstrable experience. 

Excellent written and verbal communication skills, and ability to articulate information security concepts and principles in business friendly language.

Hold a valid driving licence.

Strong stakeholder management and influencing skills, and ability to build and foster strong relationships at all levels.

Enthusiasm and passion for all things information security, and a good Knowledge of and working experience in Data Protection and GDPR.

For further information please see the attached Job Description & Person Specification.

Additional Information & How to Apply

For further information about the role please contact the hiring manager:

Morgon Evans, morgonevans@warwickshire.gov.uk 

Closing Date: 30th January 2019

Interview Date: 7th February 2019

To apply for this vacancy please click on the ‘Apply’ button.

Our method of application is online, you will also be required to upload a supporting statement of how you meet the essential criteria.

Please note, CV’s should not been submitted unless asked to do so.

If you are unable to apply using the 'Apply' button please contact the Recruitment Centre on recruitment@warwickshire.gov.uk, including your contact details and any relevant screenshots.

You will be notified of our shortlisting decision via email, so please check your email and WMJobs account on a regular basis after submitting your application.

Rewards & Benefits of working for Warwickshire

It really is true that every single job role here at Warwickshire County Council contributes to bettering the lives of the people in our County; we want to do this for our employees, too. We are proud of our strong flexible working culture, including the opportunity for flexibility on working hours, technology to support remote working (such as light laptops and phones where the role allows).

Time to recharge is so important; we provide a generous holiday allowance which rises as you remain in employment with us. You get all Bank and public holidays off, plus all staff are given an extra day of holiday over Christmas.

As if that wasn’t enough, you’ll also have access to membership of the Local Government contributory pension scheme, childcare vouchers, a host of enhanced family friendly policies and some of the very best Learning and Development training courses to support your ongoing development.

We welcome applications from everyone and value diversity in our workforce.

Supporting documents
Job Description and Person Specification

Company

As a local authority we take on a wide range of roles, whether we are providing specialist care and support to the most vulnerable in our communities, or championing Warwickshire as a choice for business through our work to promote economic growth and innovation.

Warwickshire is famous the world over as Shakespeare’s county— but that’s only half the story.  We’re also vibrant and modern. One of the fastest growing commercial regions in the UK, we’re home to many leading companies and developing exciting opportunities for everyone who lives and works here. 

WCC

We pride ourselves on being an innovative employer that like to encourage new ways of working. Likewise, our ability to make decisions quickly is as important to us as it is to our customers.

We work actively with partner organisations to deliver our core services:

  • Schools and Learning
  • Social Care and Health
  • Community Safety
  • Environment and Planning
  • Leisure and Tourism
  • Roads and Travel

Accreditations

Company info
Website
Telephone
01926 41 8125
Location
HR Service Centre
Shire Hall
Warwick
Warwickshire
CV34 4RL
United Kingdom

Get job alerts

Create a job alert and receive personalised job recommendations straight to your inbox.

Create alert